Praktikum Jaringan Komputer Modul 3 Tahun 2023
| Nama | NRP |
|---|---|
| Dicky Indra Kuncahyo | 5025201250 |
| Widian Sasi Disertasiani | 5025211024 |
- Laporan Resmi
- Soal 1
- Soal 2
- Soal 3
- Soal 4
- Soal 5
- Soal 6
- Soal 7
- Soal 8
- Soal 9
- Soal 10
- Soal 11
- Soal 12
- Soal 13
- Soal 14
- Soal 15
- Soal 16
- Soal 17
- Soal 18
- Soal 19
- Soal 20
- Aura
auto eth0
iface eth0 inet dhcp
auto eth1
iface eth1 inet static
address 192.199.1.8
netmask 255.255.255.0
auto eth2
iface eth2 inet static
address 192.199.2.8
netmask 255.255.255.0
auto eth3
iface eth3 inet static
address 192.199.3.8
netmask 255.255.255.0
auto eth4
iface eth4 inet static
address 192.199.4.8
netmask 255.255.255.0
- Himmel
auto eth0
iface eth0 inet static
address 192.199.1.1
netmask 255.255.255.0
gateway 192.199.1.8
- Heiter
auto eth0
iface eth0 inet static
address 192.199.1.2
netmask 255.255.255.0
gateway 192.199.1.8
- Denken
auto eth0
iface eth0 inet static
address 192.199.2.1
netmask 255.255.255.0
gateway 192.199.2.8
- Eisen
auto eth0
iface eth0 inet static
address 192.199.2.2
netmask 255.255.255.0
gateway 192.199.2.8
- Lugner
auto eth0
iface eth0 inet static
address 192.199.3.1
netmask 255.255.255.0
gateway 192.199.3.8
- Linie
auto eth0
iface eth0 inet static
address 192.199.3.2
netmask 255.255.255.0
gateway 192.199.3.8
- Lawine
auto eth0
iface eth0 inet static
address 192.199.3.3
netmask 255.255.255.0
gateway 192.199.3.8
- Fieren
auto eth0
iface eth0 inet static
address 192.199.4.1
netmask 255.255.255.0
gateway 192.199.4.8
- Flamme
auto eth0
iface eth0 inet static
address 192.199.4.2
netmask 255.255.255.0
gateway 192.199.4.8
- Fern
auto eth0
iface eth0 inet static
address 192.199.4.3
netmask 255.255.255.0
gateway 192.199.4.8
- Client
auto eth0
iface eth0 inet dhcp
Setelah mengalahkan Demon King, perjalanan berlanjut. Kali ini, kalian diminta untuk melakukan register domain berupa riegel.canyon.yyy.com untuk worker Laravel dan granz.channel.yyy.com untuk worker PHP (0) mengarah pada worker yang memiliki IP [prefix IP].x.1.
Lakukan konfigurasi sesuai dengan peta yang sudah diberikan.
Kemudian, karena masih banyak spell yang harus dikumpulkan, bantulah para petualang untuk memenuhi kriteria berikut.:
-
Semua CLIENT harus menggunakan konfigurasi dari DHCP Server.
-
Client yang melalui Switch3 mendapatkan range IP dari [prefix IP].3.16 - [prefix IP].3.32 dan [prefix IP].3.64 - [prefix IP].3.80 (2)
-
Client yang melalui Switch4 mendapatkan range IP dari [prefix IP].4.12 - [prefix IP].4.20 dan [prefix IP].4.160 - [prefix IP].4.168 (3)
-
Client mendapatkan DNS dari Heiter dan dapat terhubung dengan internet melalui DNS tersebut (4)
-
Lama waktu DHCP server meminjamkan alamat IP kepada Client yang melalui Switch3 selama 3 menit sedangkan pada client yang melalui Switch4 selama 12 menit. Dengan waktu maksimal dialokasikan untuk peminjaman alamat IP selama 96 menit (5)
Heiter
apt-get update
apt-get install bind9 -y
echo 'zone "riegel.canyon.d16.com" {
type master;
file "/etc/bind/jarkom/riegel.canyon.d16.com";
};
zone "granz.channel.d16.com" {
type master;
file "/etc/bind/jarkom/granz.channel.d16.com";
};' > /etc/bind/named.conf.local
mkdir /etc/bind/jarkom
echo ';
; BIND data file for local loopback interface
;
$TTL 604800
@ IN SOA riegel.canyon.d16.com.
root.riegel.canyon.d16.com. (
2023111301 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS riegel.canyon.d16.com.
@ IN A 192.199.4.1 ; IP Laravel Worker' >
/etc/bind/jarkom/riegel.canyon.d16.com
echo ';
; BIND data file for local loopback interface
;
$TTL 604800
@ IN SOA granz.channel.d16.com.
root.granz.channel.d16.com. (
2023111301 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS granz.channel.d16.com.
@ IN A 192.199.2.2 ; IP Load Balancer' >
/etc/bind/jarkom/granz.channel.d16.com
echo 'options {
directory "/var/cache/bind";
forwarders {
192.168.122.1;
};
// dnssec-validation auto;
allow-query{any;};
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
}; ' >/etc/bind/named.conf.options
service bind9 restart
Himmel
apt-get update
apt-get install isc-dhcp-server -y
dhcpd --version
echo '
# Defaults for isc-dhcp-server (sourced by /etc/init.d/isc-dhcp-server)
# Path to dhcpd'\''s config file (default: /etc/dhcp/dhcpd.conf).
#DHCPDv4_CONF=/etc/dhcp/dhcpd.conf
#DHCPDv6_CONF=/etc/dhcp/dhcpd6.conf
# Path to dhcpd'\''s PID file (default: /var/run/dhcpd.pid).
#DHCPDv4_PID=/var/run/dhcpd.pid
#DHCPDv6_PID=/var/run/dhcpd6.pid
# Additional options to start dhcpd with.
# Don'\''t use options -cf or -pf here; use DHCPD_CONF/ DHCPD_PID
instead
#OPTIONS=""
# On what interfaces should the DHCP server (dhcpd) serve DHCP
requests?
# Separate multiple interfaces with spaces, e.g. "eth0 eth1".
INTERFACES="eth0"' > /etc/default/isc-dhcp-server
echo 'subnet 192.199.1.0 netmask 255.255.255.0 {
}
subnet 192.199.2.0 netmask 255.255.255.0 {
}
subnet 192.199.3.0 netmask 255.255.255.0 {
range 192.199.3.16 192.199.3.32;
range 192.199.3.64 192.199.3.80;
option routers 192.199.3.8;
option broadcast-address 192.199.3.255;
option domain-name-servers 192.199.1.2;
default-lease-time 180;
max-lease-time 5760;
}
subnet 192.199.4.0 netmask 255.255.255.0 {
range 192.199.4.12 192.199.4.20;
range 192.199.4.160 192.199.4.168;
option routers 192.199.4.8;
option broadcast-address 192.199.4.255;
option domain-name-servers 192.199.1.2;
default-lease-time 720;
max-lease-time 5760;
}' > /etc/dhcp/dhcpd.conf
service isc-dhcp-server restart
service isc-dhcp-server status
Aura
apt-get update
apt-get install isc-dhcp-relay -y
service isc-dhcp-relay start
echo '
SERVERS="192.199.1.1"
INTERFACES="eth1 eth2 eth3 eth4"
OPTIONS=""' > /etc/default/isc-dhcp-relay
echo 'net.ipv4.ip_forward=1' > /etc/sysctl.conf
service isc-dhcp-relay restart
Pada masing-masing worker PHP, lakukan konfigurasi virtual host untuk website berikut dengan menggunakan php 7.3. (6)
Eisen
apt-get update
apt-get install bind9 nginx
echo '
upstream myweb {
server 192.199.3.1; #IP Lugner
server 192.199.3.2; #IP Linie
server 192.199.3.3; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb;
}
}' > /etc/nginx/sites-available/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
service nginx restart
nginx -t
PHP Woorker
apt-get update
apt-get install lynx -y
apt-get install wget -y
apt-get install unzip -y
apt-get install nginx -y
apt-get install php7.3 -y
apt-get install php7.3-fpm -y
mkdir -p /var/www/granz.channel.d16
wget --no-check-certificate 'https://drive.google.com/uc?export=download&id=1ViSkRq7SmwZgdK64eRbr5Fm1EGCTPrU1' -O /var/www/granz.channel.d16.zip
unzip /var/www/granz.channel.d16.zip -d /var/www/granz.channel.d16
mv /var/www/granz.channel.d16/modul-3 /var/www/granz.channel.d16
rm -rf /var/www/granz.channel.d16.zip
echo nameserver 192.199.1.2 > /etc/resolv.conf
echo '
server {
listen 80;
root /var/www/granz.channel.d16;
index index.php index.html index.htm;
server_name _;
location / {
try_files $uri $uri/ /index.php?$query_string;
}
# pass PHP scripts to FastCGI server
location ~ \.php$ {
include snippets/fastcgi-php.conf;
fastcgi_pass unix:/var/run/php/php7.3-fpm.sock;
}
location ~ /\.ht {
deny all;
}
error_log /var/log/nginx/jarkom_error.log;
access_log /var/log/nginx/jarkom_access.log;
}' > /etc/nginx/sites-available/granz.channel.d16
echo '<!DOCTYPE html>
<html>
<head>
<title>Granz Channel Map</title>
<link rel="stylesheet" type="text/css" href="css/styles.css">
</head>
<body>
<div class="container">
<h1>Welcome to Granz Channel</h1>
<p><?php
$hostname = gethostname();
echo "Request ini dihandle oleh: $hostname<br>"; ?> </p>
<p>Enter your name to validate:</p>
<form method="POST" action="index.php">
<input type="text" name="name" id="nameInput">
<button type="submit" id="submitButton">Submit</button>
</form>
<p id="greeting"><?php
if(isset($_POST['name'])) {
$name = $_POST['name'];
echo "Hello, $name!";
}
?></p>
</div>
<script src="js/script.js"></script>
</body>' > /var/www/granz.channel.d16/index.php
ln -s /etc/nginx/sites-available/granz.channel.d16 /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
service php7.3-fpm start
service php7.3-fpm restart
service nginx restart
nginx -t
Client
lynx granz.channel.d16.com
Kepala suku dari Bredt Region memberikan resource server sebagai berikut:
- Lawine, 4GB, 2vCPU, dan 80 GB SSD.
- Linie, 2GB, 2vCPU, dan 50 GB SSD.
- Lugner 1GB, 1vCPU, dan 25 GB SSD. aturlah agar Eisen dapat bekerja dengan maksimal, lalu lakukan testing dengan 1000 request dan 100 request/second. (7)
Revolte
apt-get update
apt-get install apache2-utils -y
ab -V
echo nameserver 192.168.122.1 > /etc/resolv.conf
ab -n 1000 -c 100 http://192.199.2.2/
PHP Worker
cat /var/log/nginx/jarkom_access.log| grep "GET" | wc -l
Karena diminta untuk menuliskan grimoire, buatlah analisis hasil testing dengan 200 request dan 10 request/second masing-masing algoritma Load Balancer dengan ketentuan sebagai berikut: Nama Algoritma Load Balancer Report hasil testing pada Apache Benchmark Grafik request per second untuk masing masing algoritma. Analisis (8)
Client (Revolte):
ab -n 200 -c 10 http://192.199.2.2/
Worker (3 PHP Worker):
cat /var/log/nginx/jarkom_access.log| grep "GET" | wc -l
truncate -s 0 /var/log/nginx/jarkom_access.log
htop
(Algo masukin ke Load Balancer Eisen)
Round Robin (default)
apt-get update
apt-get install bind9 nginx
echo '
upstream myweb {
server 192.199.3.1; #IP Lugner
server 192.199.3.2; #IP Linie
server 192.199.3.3; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb/;
}
}' > /etc/nginx/sites-available/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
service nginx restart
nginx -t
Weighted Round Robin
echo '
upstream myweb {
server 192.199.3.1 weight=4; #IP Lugner
server 192.199.3.2 weight=2; #IP Linie
server 192.199.3.3 weight=1; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb/;
}
}' > /etc/nginx/sites-available/lb-jarkom
unlink /etc/nginx/sites-enabled/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
service nginx restart
nginx -t
Least Connection
echo '
upstream myweb {
least_conn;
server 192.199.3.1; #IP Lugner
server 192.199.3.2; #IP Linie
server 192.199.3.3; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb/;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
}
}' > /etc/nginx/sites-available/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
service nginx restart
nginx -t
IP Hash
echo '
upstream myweb {
ip_hash;
server 192.199.3.1; #IP Lugner
server 192.199.3.2; #IP Linie
server 192.199.3.3; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb/;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
}
}' > /etc/nginx/sites-available/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
service nginx restart
nginx -t
Dengan menggunakan algoritma Round Robin, lakukan testing dengan menggunakan 3 worker, 2 worker, dan 1 worker sebanyak 100 request dengan 10 request/second, kemudian tambahkan grafiknya pada grimoire. (9)
Dengan Penyelesaian yang sama di nomor 8, namun setiap percobaan 1 worker, maka 3 worker distop, 2 wroker maka 1 qorker distop, dan seterusnya.
Selanjutnya coba tambahkan konfigurasi autentikasi di LB dengan dengan kombinasi username: “netics” dan password: “ajkyyy”, dengan yyy merupakan kode kelompok. Terakhir simpan file “htpasswd” nya di /etc/nginx/rahasisakita/ (10)
Eisen
echo '
upstream myweb {
server 192.199.3.1; #IP Lugner
server 192.199.3.2; #IP Linie
server 192.199.3.3; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb;
auth_basic "Restricted Access";
auth_basic_user_file /etc/nginx/rahasisakita/.htpasswd;
}
}' > /etc/nginx/sites-available/lb-jarkom
unlink /etc/nginx/sites-enabled/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
mkdir /etc/nginx/rahasisakita/
htpasswd -c -b /etc/nginx/rahasisakita/.htpasswd netics ajkd16
service nginx restart
nginx -t
Client
lynx granz.channel.d16.com
Lalu buat untuk setiap request yang mengandung /its akan di proxy passing menuju halaman https://www.its.ac.id. (11) hint: (proxy_pass)
Eisen
echo '
upstream myweb {
server 192.199.3.1; #IP Lugner
server 192.199.3.2; #IP Linie
server 192.199.3.3; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb;
auth_basic "Restricted Access";
auth_basic_user_file /etc/nginx/rahasisakita/.htpasswd;
}
location ~* /its {
proxy_pass https://www.its.ac.id;
}
}' > /etc/nginx/sites-available/lb-jarkom
unlink /etc/nginx/sites-enabled/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
mkdir -p /etc/nginx/rahasisakita/
htpasswd -c -b /etc/nginx/rahasisakita/.htpasswd netics ajkd16
service nginx restart
nginx -t
Client
lynx granz.channel.d16.com/its
Selanjutnya LB ini hanya boleh diakses oleh client dengan IP [Prefix IP].3.69, [Prefix IP].3.70, [Prefix IP].4.167, dan [Prefix IP].4.168. (12) hint: (fixed in dulu clinetnya)
Eisen
echo '
upstream myweb {
server 192.199.3.1; #IP Lugner
server 192.199.3.2; #IP Linie
server 192.199.3.3; #IP Lawine
}
server {
listen 80;
server_name granz.channel.d16.com;
location / {
proxy_pass http://myweb;
auth_basic "Restricted Access";
auth_basic_user_file /etc/nginx/rahasisakita/.htpasswd;
allow 192.199.3.69;
allow 192.199.3.70;
allow 192.199.4.167;
allow 192.199.4.168;
deny all;
}
location ~* /its {
proxy_pass https://www.its.ac.id;
}
}' > /etc/nginx/sites-available/lb-jarkom
unlink /etc/nginx/sites-enabled/lb-jarkom
ln -s /etc/nginx/sites-available/lb-jarkom /etc/nginx/sites-enabled
rm -rf /etc/nginx/sites-enabled/default
mkdir -p /etc/nginx/rahasisakita/
htpasswd -c -b /etc/nginx/rahasisakita/.htpasswd netics ajkd16
service nginx restart
nginx -t
Client
lynx granz.channel.d16.com/its